-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - --- english/security/2010/dsa-2015.wml 2014-04-30 13:16:22.000000000 +0600 +++ russian/security/2010/dsa-2015.wml 2016-09-27 10:56:37.540162603 +0500 @@ -1,40 +1,41 @@ - -<define-tag description>privilege escalation</define-tag> +#use wml::debian::translation-check translation="1.3" maintainer="Lev Lamberov" +<define-tag description>повÑÑение пÑивилегий</define-tag> <define-tag moreinfo> - -<p>A local vulnerability has been discovered in drbd8.</p> +<p>Ð drbd8 бÑла обнаÑÑжена локалÑÐ½Ð°Ñ ÑÑзвимоÑÑÑ.</p> - -<p>Philipp Reisner fixed an issue in the drbd kernel module that allows - -local users to send netlink packets to perform actions that should be - -restricted to users with CAP_SYS_ADMIN privileges. This is a similar - -issue to those described by <a href="https://security-tracker.debian.org/tracker/CVE-2009-3725">CVE-2009-3725</a>.</p> - - - -<p>This update also fixes an ABI compatibility issue which was introduced - -by linux-2.6 (2.6.26-21lenny3). The prebuilt drbd module packages listed - -in this advisory require a linux-image package version 2.6.26-21lenny3 - -or greater.</p> +<p>Филипп Ð Ð°Ð¹Ð·Ð½ÐµÑ Ð¸ÑпÑавил пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð² модÑле ÑдÑа drbd, коÑоÑÐ°Ñ Ð¿Ð¾Ð·Ð²Ð¾Ð»ÑÐµÑ +локалÑнÑм полÑзоваÑелÑм оÑпÑавлÑÑÑ netlink-пакеÑÑ Ð´Ð»Ñ Ð²ÑÐ¿Ð¾Ð»Ð½ÐµÐ½Ð¸Ñ Ð´ÐµÐ¹ÑÑвий, коÑоÑÑе +по ÑмолÑÐ°Ð½Ð¸Ñ Ð´Ð¾Ð»Ð¶Ð½Ñ Ð±ÑÑÑ Ð¾Ð³ÑаниÑÐµÐ½Ñ Ð¿Ð¾Ð»ÑзоваÑелÑми Ñ Ð¿Ñавами CAP_SYS_ADMIN. ÐÑа пÑоблема ÑÑ Ð¾Ð¶Ð° +Ñ Ð¿Ñоблемой, опиÑÑваемой в <a href="https://security-tracker.debian.org/tracker/CVE-2009-3725">CVE-2009-3725</a>.</p> + +<p>ÐÑоме Ñого, данное обновление вклÑÑÐ°ÐµÑ Ð² ÑÐµÐ±Ñ Ð¸ÑпÑавление пÑÐ¾Ð±Ð»ÐµÐ¼Ñ ÑовмеÑÑимоÑÑи ABI, коÑоÑÐ°Ñ +поÑвилаÑÑ Ð² linux-2.6 (2.6.26-21lenny3). ÐÑедваÑиÑелÑно ÑобÑаннÑе пакеÑÑ Ñ Ð¼Ð¾Ð´Ñлем drbd, пÑиведÑннÑе в +ÑÑой ÑекомендаÑии, ÑÑебÑÑÑ Ð½Ð°Ð»Ð¸ÑÐ¸Ñ Ð¿Ð°ÐºÐµÑа linux-image веÑÑии 2.6.26-21lenny3 +или вÑÑе.</p> - -<p>For the stable distribution (lenny), this problem has been fixed in +<p>Ð ÑÑабилÑном вÑпÑÑке (lenny) ÑÑа пÑоблема бÑла иÑпÑавлена в drbd8 (2:8.0.14-2+lenny1).</p> - -<p>We recommend that you upgrade your drbd8 packages.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑÑ drbd8.</p> - -<p>The linux-modules-extra-2.6 package has been rebuilt against the updated - -drbd8 package to provide fixed prebuilt drbd8-modules packages. If, - -instead of using the prebuilt drbd8-modules packages, you have built and - -installed a local copy of the drbd module from the drbd8-source package - -(e.g., using module-assistant), you will need to follow the same steps - -you originally used to rebuild your module after upgrading the - -drbd8-source package.</p> +<p>ÐÐ°ÐºÐµÑ linux-modules-extra-2.6 бÑл ÑобÑан заново в ÑооÑвеÑÑÑвии Ñ Ð¾Ð±Ð½Ð¾Ð²Ð»ÑннÑм +пакеÑом drbd8 Ñ ÑелÑÑ Ð¿ÑедоÑÑÐ°Ð²Ð»ÐµÐ½Ð¸Ñ Ð¸ÑпÑавленнÑÑ Ð¿ÑедваÑиÑелÑно ÑобÑаннÑÑ Ð¿Ð°ÐºÐµÑов drbd8-modules. ÐÑли +вмеÑÑо иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð¿ÑедваÑиÑелÑно ÑобÑаннÑÑ Ð¿Ð°ÐºÐµÑов drbd8-modules Ð²Ñ ÑобÑали и +ÑÑÑановили локалÑнÑÑ ÐºÐ¾Ð¿Ð¸Ñ Ð¼Ð¾Ð´ÑÐ»Ñ drbd из пакеÑа drbd8-source +(напÑимеÑ, иÑполÑзÑÑ module-assistant), Ñо поÑле Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ñ +пакеÑа drbd8-source вам Ð½ÐµÐ¾Ð±Ñ Ð¾Ð´Ð¸Ð¼Ð¾ вÑполниÑÑ Ñе же ÑамÑе дейÑÑвиÑ, +коÑоÑÑе Ð²Ñ Ð¸ÑполÑзовали Ð´Ð»Ñ Ð¿Ð¾Ð²ÑоÑной ÑбоÑки модÑлÑ.</p> - -<p>Note: After upgrading a kernel module you must reload the module - -for the changes to take effect:</p> +<p>Ðнимание: поÑле Ð¾Ð±Ð½Ð¾Ð²Ð»ÐµÐ½Ð¸Ñ Ð¼Ð¾Ð´ÑÐ»Ñ ÑдÑа ÑледÑÐµÑ Ð¿ÐµÑезагÑÑзиÑÑ +модÑлÑ, Ñогда Ð¸Ð·Ð¼ÐµÐ½ÐµÐ½Ð¸Ñ Ð±ÑдÑÑ Ð¸Ð¼ÐµÑÑ ÑилÑ:</p> <ol> - - <li>Shutdown all services that make use of the drbd module</li> - - <li>Unload the previous drbd module (modprobe -r drbd)</li> - - <li>Load the updated drbd module (modprobe drbd)</li> - - <li>Restart any services that make use of the drbd module</li> + <li>ÐÑклÑÑиÑе вÑе ÑлÑжбÑ, иÑполÑзÑÑÑие модÑÐ»Ñ drbd</li> + <li>ÐÑгÑÑзиÑе пÑедÑдÑÑий модÑÐ»Ñ drbd (modprobe -r drbd)</li> + <li>ÐагÑÑзиÑе обновлÑннÑй модÑÐ»Ñ drbd (modprobe drbd)</li> + <li>ÐеÑезапÑÑÑиÑе вÑе ÑлÑжбÑ, иÑполÑзÑÑÑие модÑÐ»Ñ drbd</li> </ol> - -<p>A system reboot will also cause the updated module to be used.</p> +<p>ÐеÑезагÑÑзка ÑиÑÑÐµÐ¼Ñ Ñакже пÑиведÑÑ Ðº иÑполÑÐ·Ð¾Ð²Ð°Ð½Ð¸Ñ Ð¾Ð±Ð½Ð¾Ð²Ð»Ñнного модÑлÑ.</p> </define-tag> # do not modify the following line - --- english/security/2010/dsa-2016.wml 2010-03-13 21:32:49.000000000 +0500 +++ russian/security/2010/dsa-2016.wml 2016-09-27 10:47:32.390448745 +0500 @@ -1,49 +1,50 @@ - -<define-tag description>several vulnerabilities</define-tag> +#use wml::debian::translation-check translation="1.1" maintainer="Lev Lamberov" +<define-tag description>неÑколÑко ÑÑзвимоÑÑей</define-tag> <define-tag moreinfo> - -<p>Several vulnerabilities (SA-CORE-2010-001) have been discovered in - -drupal6, a fully-featured content management framework.</p> +<p>Ð drupal6, полноÑÑнкÑионалÑной инÑÑаÑÑÑÑкÑÑÑе ÑпÑÐ°Ð²Ð»ÐµÐ½Ð¸Ñ ÑодеÑжимÑм, бÑло обнаÑÑжено +неÑколÑко ÑÑзвимоÑÑей (SA-CORE-2010-001).</p> - -<h3>Installation cross site scripting</h3> +<h3>ÐежÑайÑовÑй ÑкÑипÑинг во вÑÐµÐ¼Ñ ÑÑÑановки</h3> - -<p>A user-supplied value is directly output during installation allowing a - -malicious user to craft a URL and perform a cross-site scripting attack. - -The exploit can only be conducted on sites not yet installed.</p> +<p>ÐеÑедаваемое полÑзоваÑелем знаÑение вÑводиÑÑÑ Ð² Ñ Ð¾Ð´Ðµ ÑÑÑановки напÑÑмÑÑ, позволÑÑ +злоÑмÑÑÐ»ÐµÐ½Ð½Ð¸ÐºÑ Ð¿Ð¾Ð´Ð´ÐµÐ»Ð°ÑÑ URL и вÑполниÑÑ Ð°ÑÐ°ÐºÑ Ð¿Ð¾ пÑинÑÐ¸Ð¿Ñ Ð¼ÐµÐ¶ÑайÑового ÑкÑипÑинга. +ÐÑа ÑÑзвимоÑÑÑ Ð¼Ð¾Ð¶ÐµÑ Ð¸ÑполÑзоваÑÑÑÑ ÑолÑко на пока не ÑÑÑановленнÑÑ ÑайÑÐ°Ñ .</p> - -<h3>Open redirection</h3> +<h3>ÐÑкÑÑÑое пеÑенапÑавление</h3> - -<p>The API function drupal_goto() is susceptible to a phishing attack. - -An attacker could formulate a redirect in a way that gets the Drupal site - -to send the user to an arbitrarily provided URL. - -No user submitted data will be sent to that URL.</p> +<p>ÐÑедполагаеÑÑÑ, ÑÑо ÑÑнкÑÐ¸Ñ API drupal_goto() подвеÑжена ÑиÑингÑ. +ÐлоÑмÑÑленник Ð¼Ð¾Ð¶ÐµÑ ÑоздаÑÑ Ð¿ÐµÑенапÑавление на ÑайÑе Drupal, +оÑпÑавлÑÑÑее полÑзоваÑÐµÐ»Ñ Ð½Ð° пÑоизволÑнÑй URL. +Ðо URL злоÑмÑÑленника полÑзоваÑелÑÑкие даннÑе не оÑпÑавлÑÑÑÑ.</p> - -<h3>Locale module cross site scripting</h3> +<h3>ÐежÑайÑовÑй ÑкÑипÑинг в модÑле Locale</h3> - -<p>Locale module and dependent contributed modules do not sanitize the display - -of language codes, native and English language names properly. - -While these usually come from a preselected list, arbitrary administrator - -input is allowed. - -This vulnerability is mitigated by the fact that the attacker must have a - -role with the 'administer languages' permission.</p> +<p>ÐодÑÐ»Ñ Locale и завиÑимÑе модÑли дÑÑÐ³Ð¸Ñ ÑазÑабоÑÑиков не вÑполнÑÑÑ Ð¾ÑиÑÑÐºÑ Ð¾ÑобÑажаемÑÑ +кодов ÑзÑков, Ñ Ð¾ÑÑ Ñодной ÑзÑк и английÑкий оÑобÑажаÑÑÑÑ ÐºÐ¾ÑÑекÑно. +ХоÑÑ Ð¾ÑобÑажение обÑÑно беÑÑÑÑÑ Ð¸Ð· пÑедваÑиÑелÑно вÑбÑанного ÑпиÑка, Ð¼Ð¾Ð¶ÐµÑ Ð¸ÑполÑзоваÑÑÑÑ Ð¸ +пÑоизволÑнÑе Ð²Ñ Ð¾Ð´Ð½Ñе даннÑе, пеÑеданнÑе админиÑÑÑаÑоÑом. +ÐÑа ÑÑзвимоÑÑÑ Ð½Ð° наÑÑолÑко опаÑна благодаÑÑ ÑомÑ, ÑÑо злоÑмÑÑленник должен +вÑполнÑÑÑ ÑÐ¾Ð»Ñ Ñ Ð¿Ñавами 'administer languages'.</p> - -<h3>Blocked user session regeneration</h3> +<h3>ÐовÑоÑное Ñоздание заблокиÑованной полÑзоваÑелÑÑкой ÑеÑÑии</h3> - -<p>Under certain circumstances, a user with an open session that is blocked - -can maintain his/her session on the Drupal site, despite being blocked.</p> +<p>ÐÑи опÑеделÑннÑÑ Ð¾Ð±ÑÑоÑÑелÑÑÑÐ²Ð°Ñ Ð¿Ð¾Ð»ÑзоваÑÐµÐ»Ñ Ñ Ð¾ÑкÑÑÑой ÑеÑÑией, коÑоÑÐ°Ñ Ð±Ñла заблокиÑована, +Ð¼Ð¾Ð¶ÐµÑ ÑÐ¾Ñ ÑаниÑÑ ÑÐ²Ð¾Ñ ÑеÑÑÐ¸Ñ Ð½Ð° ÑайÑе Drupal, неÑмоÑÑÑ Ð½Ð° блокиÑовкÑ.</p> - -<p>For the stable distribution (lenny), these problems have been fixed in - -version 6.6-3lenny5.</p> +<p>Ð ÑÑабилÑном вÑпÑÑке (lenny) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 6.6-3lenny5.</p> - -<p>For the unstable distribution (sid), these problems have been fixed in - -version 6.16-1, and will migrate to the testing distribution (squeeze) - -shortly.</p> +<p>РнеÑÑабилÑном вÑпÑÑке (sid) ÑÑи пÑÐ¾Ð±Ð»ÐµÐ¼Ñ Ð±Ñли иÑпÑÐ°Ð²Ð»ÐµÐ½Ñ Ð² +веÑÑии 6.16-1, ÑÐºÐ°Ð·Ð°Ð½Ð½Ð°Ñ Ð²ÐµÑÑÐ¸Ñ Ð² ÑкоÑом вÑемени бÑÐ´ÐµÑ Ð¿ÐµÑемеÑена в +ÑеÑÑиÑÑемÑй вÑпÑÑк (squeeze).</p> - -<p>We recommend that you upgrade your drupal6 package.</p> +<p>РекомендÑеÑÑÑ Ð¾Ð±Ð½Ð¾Ð²Ð¸ÑÑ Ð¿Ð°ÐºÐµÑ drupal6.</p> </define-tag> # do not modify the following line -----BEGIN PGP SIGNATURE-----
iQIcBAEBCgAGBQJX6goYAAoJEF7nbuICFtKla5IP/iNkgU0huTzxmc4ZJB4w4EQh zNCehkLl4jQiXzJXMtFbm0Gykd/LY+GJtsyE86qu+uGM4Pfn60xZ/gCENr8hvZ32 IiSESMvmtFCeqv2U4UkIYr3Ex52UJGIxJ9DWE7Hs2uC26+JqhgDvy36JERN6xCAE ck6t5vZyvSRqjI0gRGcNXrlrWv/ZXVT1fijO94nmfJdNtpGT6xVpReUvah2YKU7B eN2xIoHUAKqsISotY66Xt3ThskOhAVsQ4/sYB8lN6UGymGNQYiV3liiLZD3Ht2IM 6uyhSPClpn8kDE0qdmAbzIxwT/nNkiqr8ReJhfMdd2x1dlJU8CCfxY/VP4d7GTL7 H3ohANtXDm8i9kPYGdeeffWUaFD/Ii4aVyFT1V6jUBqLK/QrytpZIDNTz3wox3eH 9Sg1SeEC4u+3GJHBF7s1HWb3lGSlErSeGXY3LtOLx/CboZXIt1zRfopyzpRs7doF tiPWzxY264xm1WZfw/+xWOpUWmty5LqB7USfymvddBkbu9w7ennPFjft9UbioerG pMLnlbTu+jUHKYhHtRXNul+Gg5c6Kjwo91HcETsKNe6EOFq0Cj5UNNPkjMDqQhnA V1hydvvDbKQ1GP2YbIDi8H8YDyp2XAXRS5xqwCgvqgDbOvn9fsYwi48Pqc945qvt OlrUlTTl0v3r09fXmXVT =GwIq -----END PGP SIGNATURE-----

